Oval Definition:	oval:org.mitre.oval:def:22236
Revision Date: 2014-08-18 Version: 47 Title: Internet Explorer Memory Corruption Vulnerability (CVE-2014-0314) - MS14-012 Description: Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2014-0314 Platform(s): Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Product(s): Microsoft Internet Explorer 10 Microsoft Internet Explorer 9 Definition Synopsis IE 9 and vulnerable file version Microsoft Internet Explorer 9 is installed AND Win 7 / R2 / Vista / 2K8 Microsoft Windows 7 (32-bit) is installed OR Microsoft Windows 7 x64 Edition is installed OR Microsoft Windows Server 2008 R2 x64 Edition is installed OR Microsoft Windows Vista (32-bit) is installed OR Microsoft Windows Vista x64 Edition is installed OR Microsoft Windows Server 2008 (32-bit) is installed OR Microsoft Windows Server 2008 (64-bit) is installed AND Check for vulnerable version Check if the version of mshtml.dll is less than 9.0.8112.16540 OR Check for LDR Check if the version of mshtml.dll is greater than or equal to 9.0.8112.20000 AND Check if the version of mshtml.dll is less than 9.0.8112.20651 OR IE 10 and vulnerable file version Microsoft Internet Explorer 10 is installed AND Win 7 / R2/ Win 8 / 2K12 Microsoft Windows 7 (32-bit) is installed OR Microsoft Windows 7 x64 Edition is installed OR Microsoft Windows Server 2008 R2 x64 Edition is installed OR Microsoft Windows 8 (x86) is installed OR Microsoft Windows 8 (x64) is installed OR Microsoft Windows Server 2012 (64-bit) is installed AND Check for vulnerable version Check if the version of mshtml.dll is less than 10.0.9200.16843 OR Check for LDR Check if the version of mshtml.dll is greater than or equal to 10.0.9200.20000 AND Check if the version of mshtml.dll is less than 10.0.9200.20963
BACK